» 2018 » 8월

CVE-2018-8022

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-8022

A carefully crafted invalid TLS handshake can cause Apache Traffic Server (ATS) to segfault. This affects version 6.2.2. To resolve this issue users running 6.2.2 should upgrade to 6.2.3 or later versions.

Source: CVE-2018-8022

CVE-2018-8040

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-8040

Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic Server (ATS) versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.

Source: CVE-2018-8040

CVE-2018-12827

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-12827

Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

Source: CVE-2018-12827

CVE-2018-8004

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-8004

There are multiple HTTP smuggling and cache poisoning issues when clients making malicious requests interact with Apache Traffic Server (ATS). This affects versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.

Source: CVE-2018-8004

CVE-2018-12828

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-12828

Adobe Flash Player 30.0.0.134 and earlier have a "use of a component with a known vulnerability" vulnerability. Successful exploitation could lead to privilege escalation.

Source: CVE-2018-12828

CVE-2018-12829

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-12829

Adobe Creative Cloud Desktop Application before 4.6.1 has an improper certificate validation vulnerability. Successful exploitation could lead to privilege escalation.

Source: CVE-2018-12829

CVE-2018-12826

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-12826

Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

Source: CVE-2018-12826

CVE-2018-1318

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-1318

Adding method ACLs in remap.config can cause a segfault when the user makes a carefully crafted request. This affects versions Apache Traffic Server (ATS) 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.

Source: CVE-2018-1318

CVE-2018-12825

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-12825

Adobe Flash Player 30.0.0.134 and earlier have a security bypass vulnerability. Successful exploitation could lead to security mitigation bypass.

Source: CVE-2018-12825

CVE-2018-5003

Posted on 2018년 8월 29일2018년 8월 29일 by admin

CVE-2018-5003

Adobe Creative Cloud Desktop Application before 4.5.5.342 (installer) has an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to privilege escalation.

Source: CVE-2018-5003